Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/ba9003-d433-4095-84b7-2f933d9896e0/1/oF8OaNrSKJp0bsE0TruYkFbh298.roa
File: oF8OaNrSKJp0bsE0TruYkFbh298.roa (raw, json)
Hash identifier: tnKROKU81S2s2jjqoh8sAfYvuCwYU3MvWS0bxF/fAps=
Subject key identifier: A0:5F:0E:68:DA:D2:28:9A:74:6E:C1:34:4E:BB:98:90:56:E1:DB:DF
Certificate issuer: /CN=9098153bde0e34584bac91fa1868d7ef24d68bcf
Certificate serial: 04A03F16
Authority key identifier: 90:98:15:3B:DE:0E:34:58:4B:AC:91:FA:18:68:D7:EF:24:D6:8B:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kJgVO94ONFhLrJH6GGjX7yTWi88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/ba9003-d433-4095-84b7-2f933d9896e0/1/oF8OaNrSKJp0bsE0TruYkFbh298.roa
Signing time: Thu 21 Apr 2022 21:13:48 +0000
ROA not before: Thu 21 Apr 2022 21:13:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 193.218.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77610774 (0x4a03f16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9098153bde0e34584bac91fa1868d7ef24d68bcf
Validity
Not Before: Apr 21 21:13:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a05f0e68dad2289a746ec1344ebb989056e1dbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:41:84:51:66:90:8f:c6:c9:93:b0:5d:2c:ab:
b5:83:99:4d:c9:2d:c3:7c:d3:e3:28:47:c3:d2:10:
b2:d2:f2:57:d1:e4:de:b8:3f:ee:c8:f7:23:b1:b1:
aa:6c:7a:db:d6:85:64:a8:bf:04:e1:85:cc:74:19:
83:f2:25:f4:0e:d9:1d:15:d5:c8:69:f6:13:e4:06:
7c:4a:eb:9e:46:b1:5e:9f:c1:ab:9c:1f:43:a6:f0:
6e:71:90:a6:d5:40:88:cf:5f:36:56:66:ec:df:30:
f6:f4:51:a1:a4:fa:f9:0e:66:e4:b4:53:b7:f2:6f:
94:9f:15:ba:9d:f9:1a:a7:8e:a9:56:0d:bc:8c:cc:
4d:2b:37:26:d7:f9:ba:0e:3b:00:59:cc:cc:81:89:
a5:58:36:bd:21:6f:02:27:83:59:45:05:5c:50:f0:
e1:da:5d:c5:80:65:df:80:61:bf:9e:09:81:9f:c7:
0b:f2:06:1a:7d:7f:5d:5b:95:61:a0:a2:1b:9d:49:
2d:e8:fa:c6:da:3f:08:9c:96:96:59:ef:26:99:1a:
72:42:80:82:e8:6b:d9:cf:a1:94:fb:a4:9c:ca:e1:
fb:e1:aa:a0:71:79:78:cb:5e:e1:11:a3:c5:0b:57:
09:5f:60:26:b9:b0:e0:bc:a6:d7:c5:4c:8f:13:a8:
75:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5F:0E:68:DA:D2:28:9A:74:6E:C1:34:4E:BB:98:90:56:E1:DB:DF
X509v3 Authority Key Identifier:
keyid:90:98:15:3B:DE:0E:34:58:4B:AC:91:FA:18:68:D7:EF:24:D6:8B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kJgVO94ONFhLrJH6GGjX7yTWi88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/ba9003-d433-4095-84b7-2f933d9896e0/1/oF8OaNrSKJp0bsE0TruYkFbh298.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/ba9003-d433-4095-84b7-2f933d9896e0/1/kJgVO94ONFhLrJH6GGjX7yTWi88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.190.0/24
Signature Algorithm: sha256WithRSAEncryption
20:44:4f:40:5c:1f:97:a5:33:38:fd:11:02:ee:af:5d:fb:a6:
20:00:3e:b8:4f:8c:99:61:f6:80:b5:58:8c:28:2b:1b:1d:38:
93:a4:4e:fe:b1:d0:bd:eb:5e:20:ef:a8:48:88:f1:e3:2f:75:
e9:5a:02:2d:c3:73:01:8b:ca:e2:30:c1:fd:3c:88:92:a3:0b:
5c:e6:d0:35:a9:97:1a:4e:93:09:95:89:fd:24:b4:e5:7e:1c:
62:44:f4:02:96:c8:d3:b1:0b:2e:95:a7:f7:6a:42:db:24:0d:
33:eb:4c:86:84:18:66:49:54:e8:7e:b9:bd:fa:06:aa:36:e2:
7b:93:4b:5b:a4:c6:6f:12:f0:47:61:6e:c7:7d:fd:a2:fc:32:
2a:b1:de:8e:d3:5e:b1:04:93:04:e5:b0:c4:be:d6:5e:c2:0c:
b5:60:f4:17:3e:8f:70:69:19:ff:1a:d5:3d:2e:0c:01:29:22:
31:4d:24:f0:f9:eb:05:3f:8e:f6:dc:ab:81:52:f2:ff:20:f0:
a3:81:bd:86:6b:24:31:17:71:8f:3f:14:bb:7a:47:36:ae:b4:
8a:cb:ca:ce:ad:f7:28:59:14:36:ab:40:6f:23:4f:c0:fd:db:
26:8f:10:37:67:c5:40:4b:33:07:e1:d0:2c:1c:88:46:00:7e:
81:9b:fd:5d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBKA/FjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MDk4MTUzYmRlMGUzNDU4NGJhYzkxZmExODY4ZDdlZjI0ZDY4YmNmMB4XDTIyMDQy
MTIxMTM0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTA1ZjBlNjhkYWQy
Mjg5YTc0NmVjMTM0NGViYjk4OTA1NmUxZGJkZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKlBhFFmkI/GyZOwXSyrtYOZTcktw3zT4yhHw9IQstLyV9Hk
3rg/7sj3I7Gxqmx629aFZKi/BOGFzHQZg/Il9A7ZHRXVyGn2E+QGfErrnkaxXp/B
q5wfQ6bwbnGQptVAiM9fNlZm7N8w9vRRoaT6+Q5m5LRTt/JvlJ8Vup35GqeOqVYN
vIzMTSs3Jtf5ug47AFnMzIGJpVg2vSFvAieDWUUFXFDw4dpdxYBl34Bhv54JgZ/H
C/IGGn1/XVuVYaCiG51JLej6xto/CJyWllnvJpkackKAguhr2c+hlPuknMrh++Gq
oHF5eMte4RGjxQtXCV9gJrmw4Lym18VMjxOodVkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSgXw5o2tIomnRuwTROu5iQVuHb3zAfBgNVHSMEGDAWgBSQmBU73g40WEus
kfoYaNfvJNaLzzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2tKZ1ZPOTRPTkZoTHJKSDZHR2pYN3lUV2k4OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWUvYmE5MDAzLWQ0MzMtNDA5NS04NGI3LTJmOTMzZDk4OTZlMC8x
L29GOE9hTnJTS0pwMGJzRTBUcnVZa0ZiaDI5OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWUv
YmE5MDAzLWQ0MzMtNDA5NS04NGI3LTJmOTMzZDk4OTZlMC8xL2tKZ1ZPOTRPTkZo
THJKSDZHR2pYN3lUV2k4OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMHavjANBgkqhkiG9w0BAQsFAAOC
AQEAIERPQFwfl6UzOP0RAu6vXfumIAA+uE+MmWH2gLVYjCgrGx04k6RO/rHQvete
IO+oSIjx4y916VoCLcNzAYvK4jDB/TyIkqMLXObQNamXGk6TCZWJ/SS05X4cYkT0
ApbI07ELLpWn92pC2yQNM+tMhoQYZklU6H65vfoGqjbie5NLW6TGbxLwR2Fux339
ovwyKrHejtNesQSTBOWwxL7WXsIMtWD0Fz6PcGkZ/xrVPS4MASkiMU0k8PnrBT+O
9tyrgVLy/yDwo4G9hmskMRdxjz8Uu3pHNq60isvKzq33KFkUNqtAbyNPwP3bJo8Q
N2fFQEszB+HQLByIRgB+gZv9XQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:23 2025 by rpki-client